How To Setup LastPass Authenticator for WordPress Two Factor Authenticator (2FA/MFA)
LastPass Authenticator is one of the app-based two-factor authentication(2FA) method which offers effortless security to the WordPress login process. LastPass is user-friendly and designed for simplicity.
Why should you choose the LastPass authenticator method for your WordPress site?
- Generates time-based one-time 2FA passcodes.
- LastPass has user-friendly design and is quite simple.
- Works Offline.
- LastPass is available on Android and iOS.
You can download miniOrange 2-Factor Authentication(2FA) plugin using the following link:
This plugin can be configured for any TOTP-based/OTP Login 2fa methods like Duo/Microsoft/Google Authenticator. It supports OTP login based 2fa methods [24/7 SUPPORT]
miniOrange Two-Factor Authentication Plugin has Universal support for all the authenticator apps along with Google authenticator in the free version of the plugin itself. Following are a few examples:-
- Google Authenticator
- Microsoft Authenticator
- Authy Authenticator
- Okta Verify
- Aegis Authenticator
- FreeOTP Authenticator etc.
Let's start the LastPass authenticator setup with the miniOrange Two-Factor Authentication plugin to make the user's account secure.
Pre-requisites For Setting Up LastPass Authenticator as 2FA method.
Before setting up 2FA, ensure you have:-
- An active WordPress site.
- Administrative access to the site.
- A smartphone (Android or iOS) with the LastPass Authenticator app installed.(You can install LastPass Authenticator App from the Google Play Store for android and the Apple App Store for iOS respectively.)
- miniOrange two-factor authentication plugin installed on your WordPress website.(You can free version from the WordPress plugin directory.)
Getting started with the LastPass Authenticator setup
Let’s see how an administrator can set up LastPass Authenticator for users. This can be done in two very simple ways:-
- Setup Wizard
- Dashboard of the plugin
1. LastPass Authenticator Setup through Setup Wizard
The setup wizard appears right after the successful installation and activation of the WordPress 2FA plugin. The Wizard guides you throughout the process of setting up 2FA(in this case LastPass Authenticator.)
Let’s follow the steps below to set up the LastPass Authenticator method as 2FA for your users.
- Click on the Let’s get started! button.
- Choose the first option “User should setup 2FA during first login.”
Choosing this option as name suggests will make user’s compulsorily configure 2FA methods (in this case LastPass Authenticator). - Click on the Continue Setup button.
- Choose the ”All users” option to set 2FA for all and click on the Continue Setup button.
- Choose only for a specific roles option.
- Select the particular role for which you want to set 2FA. (As administrator has been chosen here. This will set the LastPass Authenticator method as 2FA only for the administrator's role.)
- Then, click on the Continue Setup button.
- Choose the “Users should be directly enforced for 2FA Setup” option and click on the All Done button.
- You have successfully configured the two-factor authentication.
Step 1: After activating the plugin, the following setup wizard screen appears
Step 2: The wizard guides you to choose any one options for inline registration.
There are two option under inline registration:-
Step 3: Next you are guided to choose the user’s role for which you want to set LastPass authenticator as 2FA method.
OR
Step 4: There are again two options:-
1. Users should be directly enforced for 2FA Setup:- If you don’t want to give your users any period to set 2FA you can go with the first option.
Users will have to set 2FA during their first login to gain access to the account.
2. Give users a grace period to configure 2FA:- choosing this option will allow you to give your users a certain grace period within which users will be required to set their 2FA. Users will have to set 2FA after expiration of the grace period.
Steps for users to configure LastPass Authenticator
After the above setting of 2FA with few easy steps, users are prompted to configure list of two factor authentication method including LastPass Authenticator.
- Navigate to the WordPress Login page and enter the user’s login credentials.
- Choose the “Google/LastPass/LastPass Authenticator” button. You are prompted to configure a two-factor method during first login.
- The configuration process of LastPass Authenticator setup is divided into three steps:-
1. Choose LastPass Authenticator from the dropdown.
2. Open the LastPass Authenticator app on your phone. Click on the Plus button and scan a QR code.
3. Copy the 2FA Code generated in the LastPass Authenticator app in your mobile phone and enter the 2FA code in the text box provided and click on the Verify button.
- Click on the Finish button to finish it.
- The user has successfully logged into the account.
- Go to the WordPress Login page and enter the user’s(in this case admin) credentials to login.
- Enter the 2FA code generated in the LastPass Authenticator App.
- Click on the Validate button.
- The user has successfully logged into the account.
Now you must carefully store the backup codes provided to you. These codes will help you login when you become locked out of your account for any reason.
Subsequent Login for user’s account through LastPass Authenticator
Let’s see how user's subsequently login to their account after configuration of LastPass authenticator during first login.
2. LastPass Authenticator Setup from plugin dashboard.
- Enable 2FA for the all the roles for which you need to set 2FA.
- Then, click on the Save Settings button.
If you choose to Skip Setup Wizard, here's an alternate way to setup LastPass Authenticator through the plugin dashboard.
After clicking on the Skip Setup Wizard option, you will be redirected to the plugin dashbord i.e, Login Settings tab of two-factor authentication menu where you can enable 2FA for all the desired roles.
Steps for users to configure LastPass Authenticator
- Go to the WordPress login page and enter the user’s login credentials.
- Choose the “Google/LastPass/LastPass Authenticator” button. You are prompted to configure a two-factor method during the first login.
- The configuration process of LastPass Authenticator setup is divided into three steps:-
1. Choose LastPass Authenticator from the dropdown.
2. Open the LastPass Authenticator app on your phone. Click on the Plus button and scan a QR code.
3. Copy the 2FA Code generated in the LastPass Authenticator app in your mobile phone and enter the 2FA code in the text box provided and click on the Verify button.
- Click on the Finish button to finish it.
- The user has successfully logged into the account.
- Go to the WordPress Login page and enter the user’s credentials to login.
- Enter the 2FA code generated in the LastPass Authenticator App.
- Click on the Validate button.
- The user has successfully logged into the account.
Now, you must carefully store the backup codes provided to you. These codes will help you login when you become locked out of your account for any reason.
Subsequent Login for user’s account through LastPass Authenticator
Let’s see how user's subsequently login to their account after configuration of LastPass authenticator during first login.
Need Help? We are right here!
